Skip to main content

Information Security Overview

Information Security Overview


1- Definition - Information security is a state of well-being of information and infrastructure in which the possibility of theft, tampering, and disruption of information and services is kept low.

2- Essential terminology
Hack value – is the notion among hackers that something is worth doing or is interesting.

Vulnerability  – is the existence of a weakness (design or implementation error) that can lead to an unexpected event compromising the security of the system.

Exploit – is a breach of an IT system security through vulnerabilities.Payload – is the part of an exploit code that performs an intended malicious action.

Zero-Day attack – is an attack that exploits the computer vulnerability before software engineer releases a patch.

Daisy Chaining – it involves gaining access to a network and /or computer and then using the same information to gain access to multiple networks and computers that contains desirable information.

Doxing – Publishing personally identifiable information about an individual or organization.

Bot – is a software application that can be controlled remotely to execute or automate predefined tasks.

Warfare – or info war refers to the use of information and communication technologies to take advantage over an opponent.

Hacking – Unauthorized attempts to bypass the security mechanisms of an information system or network.

Hacker – is a person with excellent computer skills, with the ability to create and explore the computer software and hardware.

Ethical hacking – is the use of hacking tools and tricks to identify vulnerabilities so as to ensure the system security.

3- Elements of information security 
Confidentiality : The information is only accessible by persons authorized to.
Integrity : The trustworthiness of data.Availability: systems available to whom requires them.
Authenticity : Non-repudiation: not denying sending or receiving data.

4- Levels of Security
Levels of security in any system can be defined by the strength of three components which are functionality, security, and usability.
Functionality represents the features, security represents the restrictions and usability represent the graphical user interface (GUI).
We can find a close association between these three levels and move toward one of them is losing the two others.

II - Information Security Threats and attacks

Attack = motive + method + vulnerability

Threat categories:
Network threats.Host-based threats.Applications threats.
Some threats and attack vectors:
Cloud computing threats.
Advanced Persistent Threats (APT).
Viruses and worms.
BotnetsInsider attack.

Motives behind attacks:
Information theft.
Manipulating data.
Damaging the reputation of the target.
Propagating religious or political beliefs.
Taking revenge.

III - Hackers classes and hacking phases

A. Hackers classes
Black hats: are hackers with malicious intentions.

White hats: are ethical hackers.

Grey hats: are black and white hackers.

Suicide hackers: are hackers that are not afraid of going jail or facing any sort of punishment.

Script kiddies: Unskilled hackers who use real hackers’ tools and programs.

Cyber terrorists: hackers having religious or political beliefs with motive of creating a large-scale fear.

State sponsored hackers: hackers engaged by governments.

 Hacktivists: hackers promoting a political agenda or a social change.

B. Hacking phases:


1. Reconnaissance
Reconnaissance is the preparation phase. It seeks to gather information about the target. There’s two kind of reconnaissance; active and passive.
Active reconnaissance permits direct interaction by any mean with the target.Passive reconnaissance does not permit any direct interaction with the target.

2. Scanning
Scanning is the pre-attack phase, it’s done on the basis of information gathered during recon phase. This phase includes the usage of port scanners, net mappers, and many other tools.
Information extracted by the attacker during this phase are live machine, OS detail.

3. Gaining access
Gaining access is the point where the attacker obtains access to the system or the application. The attacker can then, escalate privileges to gain a complete control of the system.

4. Maintaining access
Maintaining access is the retention the system’s owner.

5. Cleaning tracks
Clearing tracks are hiding its malicious acts to prevent being uncovered.
This was an introduction to ethical hacking covering an overview of information security, threats, and attack vectors, it also covers hacker types and hacking phases. 

Labels:

Comments

Post a Comment

Popular posts from this blog

7 Signs You Have Malware and How to Get Rid of It

7 Signs You Have Malware and How to Get Rid of It PC acting strange? These warning signs could mean that your PC's security has been compromised. Here's what to do. Computers are complicated devices. They don't always do precisely what you expect. Sometimes an unexpected behavior is just a glitch; other times, it's an outward and visible sign of an inward and terrible malware infestation. If you notice any of these seven warning signs, it could mean that malware has compromised your system's security. The fact that you've got malware protection installed doesn't mean you can ignore these warning signs. Software isn't perfect, and sometimes a brand-new malware attack can slip past your security. 1. Popup Ads Start Popping Up Everywhere While not as common as they used to be, adware programs bombard their victims with advertisements. Sometimes they're ads for legitimate products, netting an affiliate fee for the adware perpetrator. Oth...
Post a Comment
Read more

Monitor secret connections that your computer makes.

How to see which websites your computer is secretly connecting to? Has your Internet connection become slower than it should be?  There may be a chance that you have some malware, spyware,  or adware that is using your Internet connection in the  background without your knowledge. Here’s how to see what’s  going on under the hood. It’s worth noting that most third-party firewalls will probably give you  this same type of information as well as block things that are trying to  connect… unless the applications managed to add an exclusion already.  Better check anyway. So, how do you find out what the problem is? There is an easy method using the netstat  command from a command prompt window. This works with Windows 10, 8, 7, Vista, and XP.  If you’re still using XP, make sure you are running at least Service Pack 2,  and just assume that somebody already hacked your computer because your operating  system is now a te...
Post a Comment
Read more

How To Encrypt Keyboard To Avoid Keyloggers

How To Encrypt Keyboard To Avoid Keyloggers If we start encrypting keystrokes of a keyboard the value that keylogger will record will be different from the actual value, it means that they would only record random characters. We will be using Keyscrambler software to encrypt our keyboard. So have a look on simple steps below to implement this in your Windows PC. Steps To Encrypt Keystrokes To Avoid Keylogger Attacks :- Step 1 . First of all download and install the tool KeyScrambler. Step 2 . Now after downloading, install it and after complete installation, you have to reboot your system. Step 3 . Now when your computer boots up, right click on the icon of KeyScrambler in the system tray at the bottom of a screen. Step 4 . Now choose options from there and Keyscrambler will open and you will see the screen like below. Step 5 . Now you can alter settings in this according to your wish and after that simply click on ok. Now your key scrambler app is ready, ...
1 comment
Read more